Date: Sat, 12 May 2001 16:32:38 +0100 (BST) From: Bob Bishop <rb@seagoon.gid.co.uk> To: FreeBSD-gnats-submit@freebsd.org Subject: ports/27285: SKIP doesn't work on 4.x Message-ID: <200105121532.QAA22414@seagoon.gid.co.uk>
next in thread | raw e-mail | index | archive | help
>Number: 27285 >Category: ports >Synopsis: SKIP doesn't work on 4.x >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-ports >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Sat May 12 08:40:00 PDT 2001 >Closed-Date: >Last-Modified: >Originator: Bob Bishop >Release: FreeBSD 4.2-RELEASE i386 >Organization: GID ltd >Environment: Nothing special. SKIP set up with SAFER for keys and traffic, MD5 for authentication and using tunnel mode. >Description: SKIP appears to work perfectly (fetches remote host's certificate properly, generates packets understood by remote host) except that incoming proto 57 packets are always dropped, skiplog says: <date> : Warning: <host> (<IP>) failed authentication Its certificate/key id may be invalid >How-To-Repeat: Set SKIP up with remote keys etc, ping remote host. Observe protocol 57 traffic with tcpdump, monitor skiplog and SKIP encription stats. >Fix: Dunno. Playing with MTU on the SKIP-enabled port doesn't seem to help. >Release-Note: >Audit-Trail: >Unformatted: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200105121532.QAA22414>